SQL injection vulnerability in the David Castro AuthCAS module (AuthCAS.pm) 0.4 for the Apache HTTP Server allows remote malicious users to execute arbitrary SQL commands via the SESSION_COOKIE_NAME (session ID) in a cookie.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
david castro apache authcas 0.4 |